Question

在我的Flask服务python文件中定义了两个端点。

第一个端点从它解析的mmap json文件返回父节点和子节点的列表。
第二个终结点从它解析的mmap json文件返回一个特定的子字段。

这些端点中的每个端点只能在令牌经过验证后才能使用。因此，我有以下实现。

from flask import request
import requests

def check_token(self):
   # Method to verify the token from the another python Service
   token_header = request.headers['authorization']
   # Remove the 'Basic" part from the token
   auth_token = token_header.split(maxsplit=1)[1]
   self.__payload = {'token' : auth_token} 
   # Append the token to the header by using the payload
   response = requests.get(self.__url, params=self.__payload, verify=False)
   return response

# 1. This endpoint returns a list of parent and child nodes from a mmap json file which it parses.
class SystemList(Resource):

   def get(self, systemname):
      token = check_token()
      if token.ok:
         # Open the mmap file, parse it, and jsonify the result and return it
      # Invalid token present
      else:
           return make_response(
                jsonify("Invalid access as token invalid.")
            )

# 2. The endpoint returns a specific child field from a mmap json file which it parses.
class SystemChildList(Resource):

   def get(self, systemname, id):
      token = check_token()
      if token.ok:
         # Open the mmap file, parse it, and jsonify the result and return it
      # Invalid token present
      else:
           return make_response(
                jsonify("Invalid access as token invalid.")
            )

我遇到的问题是我想使用装饰器来处理令牌的验证。

我希望能够在get()方法之前添加它，如下所示。

@validatetoken
    def get(self, designation):
       # I am not sure what goes here and what do I need to put here?
       # I want to be able to have one decorator for both of the SystemList and SystemChildList 
       # resource shown above.

我不确定装饰器中的内容。我对这些概念真的很陌生。任何帮助表示赞赏。

Answer 1

您可以使用method_decorators参数来实现此目的

尝试

from flask import request
from functools import wraps
import requests

def check_token(f):
    @wraps(f)
    def decorated(*args, **kwargs):
        token_header = request.headers['authorization']
        # Remove the 'Basic" part from the token
        auth_token = token_header.split(maxsplit=1)[1]
        __url = "url_for_token_validation"
        __payload = {'token' : auth_token} 
        # Append the token to the header by using the payload
        response = requests.get(__url, params=__payload, verify=False)
        if response.status_code != requests.codes.ok:
            return make_response(
                jsonify("Invalid access as token invalid.")
            )
        return f(*args, **kwargs)
    return decorated


# 1. This endpoint returns a list of parent and child nodes from a mmap json file which it parses.
class SystemList(Resource):
    @check_token
    def get(self, systemname):
        # Open the mmap file, parse it, and jsonify the result and return it

# 2. The endpoint returns a specific child field from a mmap json file which it parses.
class SystemChildList(Resource):
    @check_token
    def get(self, systemname, id):
        # Open the mmap file, parse it, and jsonify the result and return it

创建一个装饰器来处理烧瓶中的令牌验证

1 个答案: